If you purchase software for university use, please be aware of Software Procurement and Licensing Compliance (SPG 601.03-03). This new policy, which took effect April 10, 2017, was developed by Procurement Services with input from Information Assurance, Office of the General Counsel, and others. Under the new policy, university PCards or purchase orders can be used to purchase… Read More »
Whether you are planning a vacation overseas, a professional trip, or just a local getaway, you will likely take your smartphone, laptop, or other mobile device with you. Here are five tips to help you safeguard both your own—and the university’s—data. Require a password, passcode, or PIN for access to your device, and set the screen to lock… Read More »
In April, the Michigan Medicine community came together to achieve a significant goal – namely to ensure that enhanced security protocols were in place on all wireless devices connecting to the mission critical network. WiFi security for more than 20,000 devices joining the network daily was the first step in a 19-month initiative to make the IT environment… Read More »
U-M has not been affected by the widespread global ransomware attacks on computer networks over the weekend. Even with the U-M campuses — including Michigan Medicine — unaffected at this time, the attack remains a serious, ongoing threat. The attack that started May 12 has spread to more than 150 countries and 200,000 computers. For those affected, the attack… Read More »
Private groups in the MCommunity Directory now hide not only the members, but also the owners and moderators. Aside from enhancing overall MCommunity privacy, this feature, which was implemented May 13, will help make the kind of email spoofing that occurred earlier this year more difficult. It stops would-be email spoofers from discovering and impersonating the moderator of… Read More »
A sweeping study by U-M researchers of an internet communication mechanism common in mobile devices has revealed that so-called ‘open ports’ are much more vulnerable to security breaches than previously thought. The vulnerability is most pronounced in Android apps that let users share data across devices and connect to their phones from their computers. One app, called Wifi… Read More »
On April 13, a panel of experts discussed the development of international cyberspace norms. The event was part of the Dissonance, an ongoing speaker series that explores timely topics at the confluence of technology, law, privacy, and security. Watch the recording Event highlights Discussion points included what constitutes responsible state behavior in cyberspace, the differences between physical attacks and cyberattacks,… Read More »
Do you have personal, non-work files on your university-owned computer or in online storage space provided by U-M? That’s okay, but please store them in an appropriately labeled location to help the university protect your privacy. U-M suggests that you place personal files in a folder named Personal and Private for any service provided by U-M. With some… Read More »
As cyberspace becomes more and more central to the international security discussion, states are increasingly searching for common “rules of the road.” Attend the next Dissonance event and join Tim Maurer, fellow at the Carnegie Endowment for International Peace, as he moderates a panel discussion on the development of international cyberspace norms. The event is free and light… Read More »
On March 22, 2017, Knight-Wallace journalists, Bastian Obermayer & Laurent Richard shared stories behind the biggest data leaks in history, and how privacy and security present challenges in investigative journalism in the digital age.
Whether you are planning a vacation or professional trip, you will likely take along smartphone, tablet, laptop, or other mobile device. Follow these tips to safeguard both your own—and the university’s—data. Before you travel Decide whether or not you need all your devices. If you don’t need it, leave it. Consider taking a device that you only use… Read More »
To support the proposed revision of the IT Security Policy, Information Assurance has published revised U-M Data Classification Levels on Safe Computing. The revised policy will be supported and supplemented by specific operational, procedural, and technical standards, many of which specify actions to take based on the classification level of the data involved. The new data classification levels… Read More »
Will you need to use two-factor authentication (Duo) while on a trip? Duo offers multiple options to meet your needs when traveling. You may be able to use your regular Duo two-factor option, although you may need to use alternative options depending on your travel plans. Plan ahead Plan your options. Refer to Traveling With Two-Factor (Duo), a… Read More »
Michigan Medicine is tightening the security for its wired and wireless networks to ensure that only authorized and inventoried computing devices can connect to internal resources. The network project is part of a year-long program to make the IT environment within the academic medical center as secure as possible for all patients, faculty, and staff. The program also… Read More »
Computer Showcase now carries secure Aegis drives from Apricorn, providing encrypted removable media with layers of protection to keep sensitive data safe in transit. The Aegis Padlock Fortress is a 500GB USB 3.0 hard drive with 2 levels of military grade encryption, unique PIN access with programmable auto-lock features, and rugged physical attack protection. Aegis Secure Key offers… Read More »
Security is everyone’s responsibility. If you use your personal devices—smartphone, laptop, tablet, and so on—for work, you are responsible for appropriately securing and managing them, as well as for meeting the obligations described in Security of Personally Owned Devices that Access or Maintain Sensitive Institutional Data (SPG 601.33). Your unit may have additional restrictions beyond those found in… Read More »
Have you changed your password(s) recently? When you change your clocks for the start of Daylight Saving Time on Sunday, March 12, consider changing your UMICH (Level-1) password as well. ITS suggests that you change your UMICH password every six months or so. An easy way to remember this is to change your password when you change your… Read More »
Wednesday, March 22; 5:30–6:30 pm; Michigan League, Henderson Room. Join Knight-Wallace Fellows Bastian Obermayer and Laurent Richard as they discuss their work in investigating and reporting on the Panama Papers and Luxembourg Leaks. This discussion will focus on the privacy and IT security challenges in engaging in this high-profile, international investigatory journalism. Admission is free. Light refreshments included. The… Read More »
Hacks and data breaches continue to make headlines—including during the presidential election—but that hasn’t seemed to worry consumers, or even many policymakers. M.S. Krishnan, the Accenture Professor of Computer Information at the Ross School of Business, says that while security breaches haven’t changed consumer behavior, it’s time for a cybersecurity summit. Krishnan, who is also professor of technology and… Read More »
Criminals can file fraudulent tax returns in your name—and steal your tax refund. Last year, several U-M employees were among the many nationwide who were victimized by tax fraud. This year, we are already seeing phishing scams targeting W-2s. Information and Infrastructure Assurance (IIA) offers the following five tips to help you avoid online tax fraud: Practice safe computing by… Read More »